Sentry must display the Standard Mandatory DOD Notice and Consent Banner in the Sentry web interface before granting access to the device.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-250987 | MOIS-ND-000150 | SV-250987r1028214_rule | CCI-000048 | medium |
| Description | ||||
| Display of the DOD-approved use notification before granting access to the network device ensures privacy and security notification verbiage used is consistent with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance. System use notifications are required only for access via logon interfaces with human users. | ||||
| STIG | Date | |||
| Ivanti Sentry 9.x NDM Security Technical Implementation Guide | 2024-09-25 | |||
Related Frameworks
3 paths across 3 frameworks
Related Frameworks
NIST 800-531 mapping
AC-8
1.00
- DISA · V3R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
NIST 800-1711 mapping
3.1.9
1.00
- DISA · V3R1 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI1 mapping
CCI-000048
1.00
- DISA · V3R1 · disa_xccdf · related
Details
Check Text (C-250987r1028214_chk)
Verify that Sentry displays "I've read and consent to terms in IS user agreem't" when logging in to the command line.
1. Log in to the Sentry System Manager or the CLI interface.
2. Verify the required login banner is displayed.
If the banner is not shown, this is a finding.
Fix Text (F-54376r1004837_fix)
Configure Sentry to display "I've read and consent to terms in IS user agreem't" when logging in to the command line.
1. Log in to the Sentry System Manager.
2. Go to Settings >> Login.
3. Add the required login banner to the "Text to Display" box.
4. Click "Apply".